Information Security Forum Fall 2018 Gary McCrillis & Jon - - PowerPoint PPT Presentation

▶

Jan 22, 2023 273 likes •387 views

Information Security Forum Fall 2018 Gary McCrillis & Jon Vazquez Information Security Analysts, Cal Poly Information Security Office 9/28/18 1 Better Passwords, with 9/28/18 2 Ninjio Video 9/28/18 3 Passwords Are (Still) Hard

SLIDE 1

9/28/18 1

Information Security Forum Fall 2018

Gary McCrillis & Jon Vazquez

Information Security Analysts, Cal Poly Information Security Office

SLIDE 2

9/28/18 2

Better Passwords, with

SLIDE 3

Ninjio Video

9/28/18 3

SLIDE 4

Passwords Are (Still) Hard

Secure passwords are hard to remember.
Should be unique per site, but often aren’t.
Passwords are still used everywhere.
Everyone has a horror story about passwords.
Over 1 billion passwords breached by hackers.

9/28/18 4

SLIDE 5

Why Use A Password Manager?

One password to remember.
One thing to secure well.
Auto-fills unique, secure passwords.
Works great on Android and iOS.
LastPass, purchased by Cal Poly, allows

secure password sharing.

LastPass link: lastpass.com
Mac/iOS alternative: 1password.com

9/28/18 5

SLIDE 6

A Warning!

Master Password MUST be remembered and

kept secure.

Lose your Master Password and you lose ALL

your passwords.

Reputable vendors cannot access your

passwords.

TIP: Print out your master password and keep

it with you for a few days.

TIP: Use Multifactor Authentication

9/28/18 6

SLIDE 7

LastPass & Duo Getting Started Guide

Set up Duo on the Cal Poly Portal
Official LastPass Getting Started Guide

9/28/18 7

SLIDE 8

LastPass Tips

Install the iOS/Android apps and browser

extensions.

If you have many passwords in

Chrome/Firefox, you can import them into Lastpass.

Use LastPass to generate and fill in long,

secure passwords for sites.

Enterprise LastPass allows for simple

password sharing.

9/28/18 8

SLIDE 9

Use Multi-factor/2-Step Verification

Use Multifactor Authentication (MFA) for

password manager and for email.

Email is a common central point for many

accounts (Netflix, bank, news site subscription, retirement account, etc.)

No Google employee have been successfully

phished with MFA in place since 2017.

Cal Poly DUO provided for free to faculty/staff.
Google 2-Step instructions link

9/28/18 9

SLIDE 10

9/28/18 10

Information Security Forum Fall 2018 Gary McCrillis & Jon - - PowerPoint PPT Presentation

Information Security Forum Fall 2018

Gary McCrillis & Jon Vazquez

Information Security Analysts, Cal Poly Information Security Office

Better Passwords, with

Ninjio Video

Passwords Are (Still) Hard

Why Use A Password Manager?

secure password sharing.

A Warning!

kept secure.

your passwords.

passwords.

it with you for a few days.

LastPass & Duo Getting Started Guide

LastPass Tips

extensions.

Chrome/Firefox, you can import them into Lastpass.

secure passwords for sites.

password sharing.

Use Multi-factor/2-Step Verification

password manager and for email.

accounts (Netflix, bank, news site subscription, retirement account, etc.)

phished with MFA in place since 2017.

Cal Poly Information Security Office infosec@calpoly.edu

Report suspicious emails to abuse@calpoly.edu